Lucene search

[email protected]NVD:CVE-2020-25044

HistorySep 02, 2020 - 8:15 p.m.

CVE-2020-25044

2020-09-0220:15:10

[email protected]

web.nvd.nist.gov

kaspersky

virus removal

file corruption

vulnerability

CVSS2

3.6

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:N/I:P/A:P

CVSS3

7.1

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H

EPSS

Percentile

12.6%

JSON

Kaspersky Virus Removal Tool (KVRT) prior to 15.0.23.0 was vulnerable to arbitrary file corruption that could provide an attacker with the opportunity to eliminate content of any file in the system.

Affected configurations

Nvd

Node

kasperskyvirus_removal_toolRange<15.0.23.0

VendorProductVersionCPE
kasperskyvirus_removal_tool*cpe:2.3:a:kaspersky:virus_removal_tool:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
kaspersky	virus_removal_tool	*	cpe:2.3:a:kaspersky:virus_removal_tool::::::::

References

support.kaspersky.com/general/vulnerability.aspx?el=12430#290720

CVSS2

3.6

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:N/I:P/A:P

CVSS3

7.1

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H

EPSS

Percentile

12.6%

JSON

Related for NVD:CVE-2020-25044

cve1 cvelist1 prion1 thn1